Diarmi Privacy Policy

1. Introduction

Welcome to Diarmi (the "Service"), owned and operated by DIARMI LLC ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you have control over your data. This Privacy Policy explains how DIARMI LLC collects, uses, and safeguards your information when you visit https://diarmi.com or use our collaborative writing platform. By using the Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

A. Information You Provide

• Account Information: When you sign up, we collect your email address and authentication credentials via Supabase Auth. If you sign up using social login (e.g., Google, GitHub), we receive your basic profile information from that provider.
• User-Generated Content (UGC): We store the stories, paths, passages, comments, and images you create or upload. Note: Content posted to "Public" paths is visible to all visitors. Content in "Private" paths is restricted based on your settings.
• Payment Information: If you subscribe to Diarmi Unlimited, your payment data (credit card numbers, billing address) is processed directly by Stripe. DIARMI LLC does not store full credit card numbers on our servers.

B. Information Collected Automatically

• Usage Data: We collect information on how you interact with the Service, such as pages visited, reading time, and story navigation paths.
• Device Data: We may collect information about your browser type, device type, and IP address for security and optimization purposes.
• Microsoft Tracking (Analytics & Performance): We use tracking scripts provided by Microsoft (e.g., Microsoft Clarity) to analyze user behavior and improve site performance.
• GDPR Compliance: For users visiting from the European Economic Area (EEA) or UK, these tracking scripts are disabled by default until you explicitly consent via our Cookie Gate.

3. How We Use Your Data

DIARMI LLC uses your data to:

• Provide the Service: Managing your account, hosting your stories, and enabling branching narrative features.
• AI Generation: Sending specific text prompts (e.g., for book covers) to third-party AI providers.
• Process Payments: Facilitating subscriptions via Stripe.
• Improve Diarmi: Analyzing usage patterns to fix bugs and optimize the reading experience.
• Communication: Sending you transactional emails (password resets, subscription updates) or notifications about activity on your stories.

We DO NOT sell your data to third parties. Diarmi is supported by subscription revenue, not advertising.

4. Cookies and Tracking Technologies

We use cookies to maintain your login session and for analytics.

Your Control (GDPR & ePrivacy)

• Essential Cookies: Required for the site to function (e.g., keeping you logged in). You cannot opt out of these.
• Non-Essential / Tracking Cookies (Microsoft): We respect the "Privacy by Default" principle. If you are located in the European Union (EU/EEA) or UK, Microsoft tracking scripts are blocked until you click "Accept" on our Cookie Banner. If you decline, these scripts will not load, and your data will not be sent to Microsoft.

5. Data Retention & Deletion

• Retention: We retain your account information and content for as long as your account is active.
• Deletion: You may delete your account at any time via your settings.

6. Data Security

We implement industry-standard security measures to protect your data, including encryption in transit (HTTPS) and at rest. However, no method of transmission over the Internet is 100% secure.

7. Your Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data.
• Rectification: Request correction of inaccurate data.
• Erasure: Request deletion of your data.
• Portability: Request a copy of your data in a machine-readable format.
• Objection: Object to certain processing activities.

8. Children's Privacy

Diarmi is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us immediately.